Search Results

Basic Components Compute Processor Intel Core i7-8700k - This is the processor I had been using in this PC prior to converting it into a "home server" and there is nothing particularly special about it other than it was at the top of the charts for performan...

Basic Components Proectli Vault Compute Processor Intel Celeron Bay Trail-D J1800 - Provides excellent mix between performance and efficiency using only 10W. Cores / Threads 2 / 2 Base Frequency 2.41 GHz Burst Frequency ...

DHCP Server Domain Subnet Gateway hermz 10.0.0.0/21 10.0.1.1 IP Reservations A few reservations were setup to ensure certain interfaces get a static IP address assigned to make managing these machines/devices easier. MAC Addr...

Description A LXC container using nested virtualization responsible for running the majority of my services that run as docker containers. Configuration Resources Hostname CPU Memory contained 6 vCPU 24GB Storage Mount Po...

Operating System Proxmox Virtual Environment 6.x Configuration Proxmox configuration has been transitioned to being automated by an Ansible Role

Bridges Master Bridge IP Address Gateway Description man0 - 10.0.3.2/32 - Management Interface (slower Realtek NIC) enp0s31f6 vmbr1 - 10.0.1.1 LAN/WAN (faster Intel GbE) - vmbr2 - - Private network without direct Inter...

Create zpool10 Storage Pool The host's rpool (default ZFS pool used by Proxmox) can be used for templates and whatnot but I want a big pool for storing all my data. So I created a ZFS RAIDZ2 pool using 6x 10TB HDDs. This is the command I used to build my ZFS...

Description LXC container for running Samba to make network shares available to the LAN. Configuration Resources Hostname CPU Memory refuge 2 vCPU 256MB Storage Mount Point Source Mount Path Size Options root...

Ensure IOMMU Is Activated First step of this process is to make sure that your hardware is even capable of this type of virtualization. You need to have a motherboard, CPU, and BIOS that has an IOMMU controller and supports Intel-VT-x and Intel-VT-d or AMD-...

Basic Components Compute Processor AMD Ryzen 3 3200G - Economical CPU that has 4 cores and integrated graphics so a PCIe slot can be saved since a GPU isn't necessary. Cores / Threads 4 / 4 Base Frequency 3.6 GHz Burst Fre...

Configuration Because I don't want my main management interface to ever change names, I explicitly give it a name based on its MAC address. # /etc/systemd/network/10-management-net.link + [Match] + MACAddress=70:85:c2:fe:4c:b7 + + [Link] + Name=man0 ...

Install fail2ban This blocks connections that make repeated failed attempts to authenticate. SSH is covered by default which is what I am interested in, and I'll add additional config to similarly block too many repeated auth failures against the Proxmox web ...

See PCI Passthrough for more detail as to why I am doing these things. Proxmox doesn't need a GPU, so blacklist the GPU and prepare it to be passed for a guest machine. Enable Kernel Modules # /etc/modules # /etc/modules: kernel modules to load at boot tim...

Setup ZFS Scrub (Data Integrity) Automate ZFS scrubbing so the data integrity on disks is actively monitored, repaired if necessary, and I'm alerted if there is a problem with my disks. Create systemd Service/Timer (source) Create a simple systemd servcie t...

Description This VM is for running macOS via dedicated hardware so I have something faster than my laptop. Configuration Resources Hostname CPU Memory MiMac 12 vCPU 16GB Storage Disk Controller Size Purpose loca...

Ensure IOMMU Is Activated First step of this process is to make sure that your hardware is even capable of this type of virtualization. You need to have a motherboard, CPU, and BIOS that has an IOMMU controller and supports Intel-VT-x and Intel-VT-d or AMD-...

Giving a LXC guest GPU access allows you to use a GPU in a guest while it is still available for use in the host machine. This is a big advantage over virtual machines where only a single host or guest can have access to a GPU at one time. Even better, multipl...

Pushing to multiple origins ensures that a repo is always available. While I use Gitlab as my main repository, I might want to mirror it to Bitbucket, Github, or another GitLab for redundancy. As an example, if my server ever needed to be rebuilt it would be ...

If you store environment variables in a file and want to quickly export all of them it is actually not as simple as running an export on each line. # source $MY_FILE # export $(cut -d= -f1 $MY_FILE) source Another thing you can do is update ~/.bashrc or ...

Key authentication should always be setup, but sometimes it is necessary to authenticate using passwords—even if for nothing else than to verify passwords are disabled. ssh -o PreferredAuthentications=password -o PubkeyAuthentication=no user@domain.com sou...